private void LoginBtn_Click(object sender, EventArgs e)
{
string sqlStr = "";
Login = false;
if (txtUsername.Text.Length == 0 ||
txtPassword.Text.Length == 0)
{
MessageBox.Show("Missing username or password. "
+ "Please try again.");
txtUsername.Clear();
txtPassword.Clear();
}
else
{
try {
DataTable dt = Connect.query("Select * from Staff WHERE Staff_ID = '" + txtUsername.Text + "' AND Password = '******'");
if (dt.Rows.Count > 0)
{
if (dt.Rows[0]["Staff"].ToString().Equals("True"))
{
Staff = true;
Login = true;
getVar.name = "Login As:" + dt.Rows[0]["LastName"].ToString() + " " + dt.Rows[0]["FirstName"].ToString();
getVar.storeID = dt.Rows[0]["Store_ID"].ToString();
}
else
{
Staff = false;
Login = true;
getVar.name = "Login As:" + dt.Rows[0]["FirstName"].ToString();
getVar.storeID = dt.Rows[0]["Store_ID"].ToString();
}
}
else
{
MessageBox.Show("Incorrect user name or password. "
+ "Please try again.");
txtUsername.Clear();
txtPassword.Clear();
}
if (Login)
{
if (Staff)
{
Menu staffmenu = new Menu(this);
staffmenu.Show();
this.Hide();
txtUsername.Clear();
txtPassword.Clear();
}
else if (!Staff)
{
SearchItem nonstaffmenu = new SearchItem(this);
nonstaffmenu.Show();
this.Hide();
txtUsername.Clear();
txtPassword.Clear();
}
}
}
catch (Exception ex) {
MessageBox.Show(ex.Message + "\nSQL: " + sqlStr);
}
}
}
